Malpedia Library

Click here to download all references as Bib-File.•

2025-09-24 ⋅ Zscaler ⋅ Sudeep Singh, Yin Hong Chang
COLDRIVER Updates Arsenal with BAITSWITCH and SIMPLEFIX
NOROBOT

2025-09-14 ⋅ Genians ⋅ Genians
AI-Driven Deepfake Military ID Fraud Campaign by Kimsuky APT

2025-08-05 ⋅ Defentive ⋅ Defentive Threat Research
Lost in Translation: Threat Actors Use SEO Poisoning and Fake DeepL Sites to Distribute Gh0st RAT
Ghost RAT

2025-07-28 ⋅ Wiz.io ⋅ Merav Bar
TraderTraitor: Deep Dive
GolangGhost Manuscrypt RN Stealer DRATzarus GolangGhost PostNapTea Volgmer wAgentTea

2025-07-24 ⋅ SYGNIA ⋅ Sygnia Team
Fire Ant: A Deep-Dive into Hypervisor-Level Espionage

2025-07-16 ⋅ Shindan ⋅ Paul Viard
Crocodilus - A deep dive into its structure and capabilities
Crocodilus

2025-07-11 ⋅ Authentic8 ⋅ A8 Team
Cyber Intel Brief: NightEagle APT, AI deepfakes, SPNEGO flaw
NightEagle

2025-05-29 ⋅ Fortinet ⋅ John Simmons, Xiaopeng Zhang
Deep Dive into a Dumped Malware without a PE Header

2025-05-01 ⋅ Github (VenzoV) ⋅ VenzoV
Deep Dive Fog ransomware
Fog

2025-04-25 ⋅ HiSolutions ⋅ Maik Würth, Mateo Mrvelj, Nicolas Sprenger
Rolling in the Deep(Web): Lazarus Tsunami
tsunami

2025-04-21 ⋅ Trellix ⋅ Mohideen Abdul Khader
Unmasking the Evolving Threat: A Deep Dive into the Latest Version of Lumma InfoStealer with Code Flow Obfuscation
Lumma Stealer

2025-04-16 ⋅ VirusTotal ⋅ VirusTotal
b804ab085f7cf9ee546d586b36ebbeb73f874205b8fae048760dee78375ddf40
Unidentified 121

2025-04-08 ⋅ Trustwave ⋅ Nikita Kazymirskyi, Serhii Melnyk
A deep Dive into the Leaked Black Basta Chat Logs
Black Basta Black Basta

2025-03-28 ⋅ Trend Micro ⋅ Ahmed Mohamed Ibrahim, Aliakbar Zahravi
A Deep Dive into Water Gamayun’s Arsenal and Infrastructure
DarkWisp SilentPrism Kematian Stealer Rhadamanthys Stealc Water Gamayun

2025-03-14 ⋅ K7 Security ⋅ Baran S
Android Banking Trojan – OctoV2, masquerading as Deepseek AI
Coper

2025-03-03 ⋅ DeXpose ⋅ M4lcode
PureLogs Deep Analysis: Evasion, Data Theft, and Encryption Mechanism
PureLogs Stealer

2025-02-13 ⋅ Securonix ⋅ Den Iyzvyk, Tim Peck
Analyzing DEEP#DRIVE: North Korean Threat Actors Observed Exploiting Trusted Platforms for Targeted Attacks
RandomQuery

2025-01-15 ⋅ 0x0d4y ⋅ 0x0d4y
[BabbleLoader] A Deep Dive into EDR and Machine Learning-Based Endpoint Protection Evasion

2025-01-08 ⋅ CISO Series ⋅ Rich Stroffolino
Cyber Security News: Cyber Trust label, UK deepfake laws, Treasury attack details
Natohub

2024-12-11 ⋅ Sublime ⋅ Sublime Security
Xloader deep dive: Link-based malware delivery via SharePoint impersonation
Xloader Formbook